Aida64 : Security Vulnerabilities, CVEs,
Buffer overflow in FinalWire Ltd AIDA64 Engineer 6.00.5100 allows attackers to execute arbitrary code by creating a crafted input that will overwrite the SEH handler.
Max CVSS
7.8
EPSS Score
0.09%
Published
2021-02-19
Updated
2021-07-21
An issue was discovered in kerneld.sys in AIDA64 before 5.99. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x80112084 and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
Max CVSS
9.0
EPSS Score
0.13%
Published
2020-03-25
Updated
2020-04-01
2 vulnerabilities found